How severe is CVE-2022-24051?

This vulnerability has a severity rating of HIGH with a CVSS score of 7 out of 10.

What type of vulnerability is CVE-2022-24051?

This is classified as CWE-134, which is a common weakness in software security.

CVE-2022-24051

HIGH Year: 2022

CVSS v3 Score

7.0

High

CVSS v2 Score

4.6

Medium

Weakness Type

CWE-134

View all →

Vulnerability Description

MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of a user-supplied string before using it as a format specifier. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16193.

CVE-2020-27524

HIGH

CVSS:7.1(High)

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version (N+R_CN_AU_P0395) mishandles %x and %s format string specifiers in a device name. This may lead to memory cont...

CWE-1342020

CVE-2022-35878

HIGH

CVSS:7.1(High)

Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted UPnP negotiation can lead to...

CWE-1342022

CVE-2022-35879

HIGH

CVSS:7.1(High)

CWE-1342022

CVE-2022-35880

HIGH

CVSS:7.1(High)

CWE-1342022

CVE-2022-35881

HIGH

CVSS:7.1(High)

CWE-1342022

CVE-2018-12590

HIGH

CVSS:7.2(High)

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and privileg...

CWE-1342018

CVE-2022-24051

Vulnerability Description

Related Vulnerabilities

CVE-2020-27524

CVE-2022-35878

CVE-2022-35879

CVE-2022-35880

CVE-2022-35881

CVE-2018-12590